An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/escoffier-labs/solos-cookbook

How one engineer runs a 24/7 multi-agent AI stack on bare metal. Opinionated. Dogfooded. Broken-and-fixed in production. Tested in service.

ai-agent best-practices devops hardening linux openclaw runbook security

Last synced: 11 Jun 2026

https://github.com/mablanco/docker-fgds

Docker image for Fast Google Dorks Scan (FGDS), a script to enumerate web-sites using Google dorks

docker osint pentesting security

Last synced: 02 Jun 2026

https://github.com/geeklearningio/bouncer

Highly Configurable Authorization Model

acl aspnet-core authorization dotnet dotnet-core security

Last synced: 28 Apr 2025

https://github.com/msdousti/owasp-java

A seriously flawed Java project for teaching "OWASP Top 10 - 2017" concepts.

css intellij-idea java javascript jsp maven mysql owasp-top-10 payara-server security servlet web

Last synced: 07 Oct 2025

https://github.com/e-zk/page

password manager using age for encryption

age encryption go password-manager secrets security

Last synced: 14 Jan 2026

https://github.com/marc2332/securityapp-ui-idea

A UI idea for a security/cleaner app

design idea kotlin security ui

Last synced: 02 May 2026

https://github.com/0xjjpa/deniable-website

👀 deniable.website / An usage example of Web Cryptography API

cryptography security web

Last synced: 23 Feb 2026

https://github.com/raj-tyagi/nmap-ip-scanner-gui

This repository hosts Python code for an advanced IP scanning tool with a user-friendly graphical interface. Built using the nmap library, it provides efficient network scanning options including Ping Scan, Quick Scan, and Intense Scan, making it ideal for network administrators and cybersecurity professionals.

ip-address nmap python security tkinter

Last synced: 02 Mar 2026

https://github.com/ferhatgec/passplusplus

Single header Password Quality and Security Library.

file header library pass quality security single

Last synced: 18 Feb 2026

https://github.com/bootstrapsp/miu

Developing with Hyperledger Indy made easy.

blockchain-technology golang grpc-python hyperledger-indy iot-application security

Last synced: 04 Apr 2026

https://github.com/nis2shield/django-nis2-shield

🛡️ Security-First Middleware for Django NIS2 Compliance

compliance django forensic gdpr logging middleware nis2 python security

Last synced: 29 Apr 2026

https://github.com/pandarudra/ecrypto

Secure folder encryption with modern cryptography (XChaCha20-Poly1305 + Argon2id)

cli clitool decryption ecrypto encryption go golang security

Last synced: 21 Jan 2026

https://github.com/byxor/passflip

Lightweight password manager that doesn't store anything

password-manager python3 security

Last synced: 24 Oct 2025

https://github.com/cyb3rko/matrix-guardian

A friendly, lightweight Matrix bot for protecting the people

docker go golang guardian matrix security

Last synced: 17 Apr 2026

https://github.com/levicook/arch-valops

🏗️ Infrastructure-as-Code toolkit for secure Arch Network validator operations with hybrid development architecture and comprehensive monitoring dashboard

arch-network blockchain devops infrastructure-as-code monitoring security validator

Last synced: 11 Oct 2025

https://github.com/elektro-wolle/check-certs

Simple checker for new certificates for a given set of domain-names

monitoring security tls-certificate

Last synced: 15 Apr 2026

https://github.com/rezen/zap-scripts

Scripts for zaproxy

security zap-proxy

Last synced: 12 Jun 2025

https://github.com/thresher-sh/thresher

OSS Projects are cool, vulnerabilities and threats arent. AI scan environment for scanning OSS projects for threats, malware, security issues.

ai ai-agents entropy malware malware-analysis scanning security supply-chain-security vulnerability

Last synced: 04 Apr 2026

https://github.com/stormsinbrewing/savvy-devsecops

GitHub native DevSecOps CI/CD best practices include automated security testing, code analysis, and policy enforcement using GitHub Actions, coupled with secure IaC and container security measures. This entails managing secrets, enforcing access control, and implementing incident response and monitoring, all while fostering continuous learning.

aws build codeql dependab devops devsecops docker github github-actions kubernetes nodejs renovate sast security

Last synced: 01 Jun 2026

https://github.com/aegisjsproject/component

Base component using `@shgysk8zer0/aegis` & `@shgysk8zer0/aegis-styles`

aegis constructable-stylesheets custom-elements sanitizer-api security web-components

Last synced: 23 Oct 2025

https://github.com/nckslvrmn/whisper

Simple service for one time secret (and file) sharing

aes-gcm-256 container cryptography docker encryption golang scrypt secret-management security

Last synced: 16 Mar 2026

https://github.com/marc-shade/fraud-detection-mcp

Advanced fraud detection MCP server with behavioral biometrics, real-time anomaly detection, and explainable AI for comprehensive fraud prevention

anthropic behavioral-biometrics claude fraud-detection fraud-prevention fraudulent-transactions mcp model-context-protocol security

Last synced: 05 Apr 2026

https://github.com/kukoboris/ubuntu-security-setup

Скрипт для автоматизированной настройки безопасности и оптимизации серверов Ubuntu

bash-script hardening security server-setup ubuntu

Last synced: 29 Apr 2026

https://github.com/neocky/it-security-for-humans

:guard: IT Security Guidelines for Humans written in an understandable language with examples

cybersecurity it-security security security-tools system-administration zero-trust zero-trust-network

Last synced: 01 Mar 2026

https://github.com/astrogilda/mcp-keyring-injector

Session-scoped MCP credential security - keys auto-injected at startup, auto-removed at exit, zero config file exposure

api-keys authentication claude-code credentials keyring mcp python security

Last synced: 17 Jun 2026

https://github.com/bad-antics/n01d-machine

🔒 n01d Machine - Secure Cross-Platform Virtual Machine Manager with Sandboxing, Tor, VPN & Network Isolation

privacy qemu rust sandbox security tauri tor virtualization vm vpn

Last synced: 08 Feb 2026

https://github.com/basis-theory-labs/vgs-migration-guide

Migration Guide to move from Very Good Security to Basis Theory

guide migration security tokenization

Last synced: 04 Mar 2026

https://github.com/discourse/ruby-landlock

Landlock bindings for Ruby

landlock linux sandbox security

Last synced: 25 Jun 2026

https://github.com/amkisko/grape_rails_logger.rb

Unified, Rails-compatible JSON request logging for Grape APIs with ActiveRecord timing, parameter filtering, and structured context.

activerecord grape logging monitoring rails security structured-logging

Last synced: 15 Apr 2026

https://github.com/celenityy/better-vanadium

My recommendations for the ultimate configuration of the Vanadium web browser to maximize privacy, security, and usability. :)

ads android android-application anti-fingerprinting anti-tracking aosp aosp-android chromium chromium-browser divested grapheneos hardened hardening mulch privacy privacy-protection security security-hardening tracking vanadium

Last synced: 04 Aug 2025

https://github.com/root-tanishq/pscrap

multi processed parameter scrapper

bugbounty hacking pentesting python scrapping security web

Last synced: 14 Apr 2025

https://github.com/sjinks/php-disable-eval

Disable eval() and create_function() in PHP

eval php php-extension security

Last synced: 10 Apr 2025

https://github.com/fabianferno/the-riot-protocol

It offers device authentication, data encryption, decentralized key generation, and blockchain-based authentication for secure and reliable communication between devices and users.

arduino blockchain cryptography data gateway iot security solidity university-project

Last synced: 18 Jan 2026

https://github.com/rayhanadev/replit-token-dump

Secrets that were found by the Replit Token Scanner are dumped here for revocation.

replit secret-scanning security

Last synced: 28 Jan 2026

https://github.com/esc4icescesc/dmap

Distributed mapping of internet infrastructure

analytics collaboration rust rust-lang scanner security security-tools

Last synced: 04 Mar 2026

https://github.com/jojiiofficial/triplink

Listens for incoming port scans and reports the IPs to the ScanBanServer

cronjob filter ipset iptables security security-automation security-tools triplink

Last synced: 12 May 2026

https://github.com/dev-sec/cnspec-collection-baselines

DevSec Security Baselines provide battle tested hardening checks for Linux, SSH, nginx, MySQL in cnspec

hardening security

Last synced: 31 Aug 2025

https://github.com/bocaletto-luca/pysecscope

PySecScope Author: Bocaletto Luca PySecScope is a comprehensive Linux enumeration tool with a Tkinter-based graphical user interface. Inspired by LinEnum, this tool gathers system, user, network, and service information, along with detailed security checks, and generates reports in multiple formats (Text, JSON, CSV). English and Italian languages.

admin-tool bocaletto-luca information-services linenum-expired linux multilanguage network pysecscope python real-time reports scan-modules security security-tools system-tools tkinter

Last synced: 25 Oct 2025

https://github.com/craftycram/richtigpferd

password generator using German words to create secure passwords

generator password security

Last synced: 05 Feb 2026

https://github.com/tsteinholz/groundsec

IoT Solution for Insecure Open Areas. Code-name: Emerald Guardian.

capstone iot linklabs pir security sensors

Last synced: 11 May 2026

https://github.com/mauricelambert/entropyanalysis

This package analyzes file entropy (shannon entropy) for forensic and malware analysis.

cybersecurity disk-analysis entropy entropy-analysis file-analysis forensic malware-analysis security

Last synced: 04 Jun 2026

https://github.com/fiware/tutorials.securing-access

:closed_book: FIWARE 403: IDM - Securing Access to Resources

access-control fiware fiware-keyrock oauth2 pdp pep security tutorial

Last synced: 11 Oct 2025

https://github.com/flaviostutz/sipwall

Analyses SIP network traffic and blocks hosts that are suspicious in iptables. Can block IPs by country or by SIP responses

allowed-countries asterisk ban block iptables security sip sip-firewall sip-responses

Last synced: 23 Apr 2025

https://github.com/zapalm/auto-indexer

PHP auto indexer: the tool against directory traversal security vulnerability. It recursively adds a index.php file in all given directories.

cli-utility directory-traversal-vulnerability hacktoberfest php-library security vulnerability

Last synced: 24 Apr 2025

https://github.com/swillner/regban

Lightweight alternative to fail2ban using nftables (banning IPs with failed login attempts)

fail2ban ip-blacklist ip-blocking nftables security

Last synced: 25 Mar 2025

https://github.com/ofabiodev/resafe

🛡️ Detects ReDoS vulnerabilities in regexes using Thompson NFA construction and spectral radius analysis.

analyzer backtracking javascript library lightweight npm-package package performance redos regex regexp security typescript validation vulnerability

Last synced: 22 Jan 2026

https://github.com/shaneutt/podtunnel

Secure Tunnels For Kubernetes Pods

kubernetes networking security

Last synced: 16 Mar 2026

https://github.com/nwestfall/netsparkerscanrunner

Quickly and easily a Netsparker Scan using your Netsparker Cloud Account

netsparker node scan security

Last synced: 14 Apr 2025

https://github.com/darkstarbdx/cryptid2

Cryptid2 🐍💻 is a Python tool for educational HTTP/UDP flood attacks. It tests server/network resilience, aiding ethical hackers in security assessments. Customizable threads, attack durations, and targets make it ideal for controlled tests. Compatible with Linux/Termux.

ddos ethical-hacking security security-tools

Last synced: 30 Oct 2025

https://github.com/ralish/certuiexts

A library which extends Windows cryptography support for displaying additional OIDs and associated certificate extensions

certificates security windows x509

Last synced: 07 May 2026

https://github.com/cisagov/cool-sharedservices-cdm

Terraform code to create a site-to-site VPN tunnel between the COOL and the CISA CDM (Continuous Diagnostics and Mitigation) environment, as well as some related resources to feed COOL logging data to CDM.

cdm cisa security

Last synced: 14 Oct 2025

https://github.com/deutsia/deutsia-radio

A privacy-focused, censorship-resistant multinet Android radio player built with Claude Code. Supports I2P, clearnet and Tor streaming.

android i2p material-design-3 privacy radio radio-streaming radio-streaming-application security tor

Last synced: 29 Apr 2026

https://github.com/oracle-quickstart/terraform-oci-networking

Terraform module to Quickstart deploy network resources on OCI and to be reused by other projects

firewall networking oci oracle-cloud-infrastructure remote-peering security terraform terraform-module terraform-modules vcn virtual-cloud-network

Last synced: 13 Apr 2025

https://github.com/akmalovaa/mikroseclist

Mikrotik CrowdSec firewall address lists sync

address address-list block crowdsec firewall mikrotik router-os routeros security

Last synced: 19 Apr 2025

https://github.com/clj-holmes/clj-holmes-action

Action to execute clj-holmes in Clojure/Clojurescript projects.

clojure code-scanning sast security

Last synced: 03 Jul 2026

https://github.com/hiwepy/security-cas-spring-boot-starter

Spring Security 整合 Cas 登录

cas security spring-boot

Last synced: 16 Aug 2025

https://github.com/devops-ia/helm-openbas

Helm chart for Open Breach and Attack Simulation Platform

charts cyber cybersecurity helm intelligence kubernetes openbas osint security threat-intelligence

Last synced: 19 Apr 2025

https://github.com/vdlp/oc-hashids-plugin

Allows developers to use secure hashed ID's in October CMS powered websites.

hashids hashing laravel october-cms octobercms octobercms-plugin php security

Last synced: 12 Apr 2025

https://github.com/5gsec/security-intents

Repository to hold security intents in standard template format.

5g blueprints intents k8s kubernetes o-ran security

Last synced: 14 Aug 2025

https://github.com/p0n1/curated-web3-security-feeds

RSS Aggregator for curated web3 security resources.

aggregator feeds security smart-contracts web3

Last synced: 10 Mar 2026

https://github.com/raveensr/secura-pi-cam

A surveillance security system written in python which uses a Raspberry Pi with motion detector and it sends mobile notifications to telegram app

raspberry-pi security telegram-bot wifi

Last synced: 19 Apr 2025

https://github.com/gnh1201/plcsim2016

A simple PLC simulator using C++/MFC

security simulation stuxnet

Last synced: 13 Sep 2025

https://github.com/perpetualintelligence/shared

The shared components for cross-platform frameworks, and developer tools.

licensing oneimlx oneterminal pi-cli saas security

Last synced: 16 Jan 2026

https://github.com/rgrannell1/polonium

stateless password manager.

command-line password security stateless

Last synced: 07 May 2025

https://github.com/iitis/autopolicy

Autopolicy proof of concept

ddos firewall iot security

Last synced: 19 Apr 2025

https://github.com/l0wk3y-iaan/hunting-with-l0wk3y

This repository documents my path from cybersecurity enthusiast to a skilled bug bounty hunter. Here, I share the tools, resources, techniques, and real-world insights I've gathered along the way, aimed at uncovering vulnerabilities and improving application security.

bounty bug-bounty bugbounty cheatsheet enumeration hacking methodology penetration-testing pentest redteam security vulnerability web-application web-penetration-testing

Last synced: 13 Sep 2025

https://github.com/joshuadeguzman/xtrength

A password strength meter for Android

android jitpack kotlin passwords security

Last synced: 13 Apr 2025

https://github.com/garyku0/nextjs-passkey-auth

Modern passwordless authentication with WebAuthn passkeys, Next.js, and Supabase. Optimized for Cloudflare Pages with optional CAPTCHA protection.

authentication biometric cloudflare edge-runtime nextjs passkey passwordless security supabase typescript webauthn

Last synced: 09 Aug 2025

https://github.com/dreadl0ck/osx-root-installer

OSX ElCapitan Privilege Escalation Proof Of Concept

exploit osx osx-security security

Last synced: 08 Apr 2025

https://github.com/authress/authress-sdk.rs

The Authress SDK for Rust provides authorization as a service with fully compatible REST apis.

api authentication authentication-middleware authorization authorization-framework authorization-server credentials keys security user-identity user-management

Last synced: 13 May 2025

https://github.com/bellthomas/citadel

Citadel — A Trusted Reference Monitor for the Linux Kernel using Intel SGX Enclaves

difc enclave kernel linux lsm reference-monitor security sgx

Last synced: 20 Apr 2025

https://github.com/circl/odfcleaner

Python module to cleanup ODF files.

cleanup-odf-files odf odfcleaner security

Last synced: 07 Mar 2026

https://github.com/jedda/ecies

A Go module to implement the ECIES encryption scheme with various keys. Compatible with Apple's Security framework implementation & the Secure Enclave on Apple platforms.

apple ecies go security

Last synced: 12 Jan 2026

https://github.com/Kin69/Athena

Athena is a modern, comprehensive firewall solution that supports both root and VPN modes, offering DNS blocklists, Material Design UI, and native performance. Unlike older alternatives, Athena provides advanced features like app lock, real-time packet monitoring, and malicious site protection, all while maintaining a user-friendly interface.

android dns dynamic-colo firewall foss kotlin kotlin-android material mvvm network opensource packets privacy protection root secure security vpn

Last synced: 03 Aug 2025

https://github.com/maandree/passcheck

Passphrase strength evaluator

password-checker security

Last synced: 24 Feb 2025

https://github.com/bloclabshq/auth-pack

Comprehensive Python authentication package bridging Web2 and Web3 for Django REST Framework

authentication django drf ethereum jwt kdf oauth passkeys python rest-api security totp web3 webauthn

Last synced: 24 Apr 2026

https://github.com/nyxnor/onionwash

Parse tor configuration files and edit the torrc in a safe manner

configuration open-source security tor torrc

Last synced: 03 Sep 2025

https://github.com/644/avg-audit

Arch Linux Audit Tool - checks for vulnerable packages installed against security.archlinux.org

advisory arch-linux archlinux audit cve security

Last synced: 10 Mar 2025

https://github.com/botirk38/guardianai

Safe Contracts is a tool that analyzes smart contracts for security vulnerabilities. It uses AI to detect common security issues in Solana code. The tool is accessible through an API that can be used to analyze smart contracts programmatically.

ai rust security solana

Last synced: 08 Apr 2025

https://github.com/trishankatdatadog/tuf-on-a-plane

Allegedly, a minimal, Pythonic TUF client can be written on a long flight. This was written after that flight, but hey, it's a shot.

security tuf updates

Last synced: 14 Apr 2025

https://github.com/sjinks/node-modsecurity

ModSecurity Connector for Node.js

modsec modsecurity security waf

Last synced: 10 Apr 2025